From owner-freebsd-security@FreeBSD.ORG Sun Jun 24 18:55:28 2012 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 120981065673 for ; Sun, 24 Jun 2012 18:55:28 +0000 (UTC) (envelope-from jhellenthal@dataix.net) Received: from mail-ob0-f182.google.com (mail-ob0-f182.google.com [209.85.214.182]) by mx1.freebsd.org (Postfix) with ESMTP id B79588FC18 for ; Sun, 24 Jun 2012 18:55:27 +0000 (UTC) Received: by obbun3 with SMTP id un3so6740381obb.13 for ; Sun, 24 Jun 2012 11:55:27 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=dataix.net; s=rsa; h=date:from:to:cc:subject:message-id:references:mime-version :content-type:content-disposition:in-reply-to; bh=llb1uOKHoM6UYbS597ENYX0nOKT8JVD8KgpYf4kRiC4=; b=eFbrwn+6zIakGGBu99B/qGzKql05TsPvTDtpDt1o4L78N9sY2Rn5n7mSsPIsoJ6d7T wZku1gaGgHCcR4hdWM5aJCdgLthzc91Uk0dre/fx4MkrwY9V9V1N5CuPsBhATGi9Wls0 FQqCraMoKT/ygHeNpRleuB3DoWbyhReNR3E/U= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=date:from:to:cc:subject:message-id:references:mime-version :content-type:content-disposition:in-reply-to:x-gm-message-state; bh=llb1uOKHoM6UYbS597ENYX0nOKT8JVD8KgpYf4kRiC4=; b=p0r7G8qXJ7NjhnL0Ff4kKCrA3m5lksvootGmyJ2ZvbiUW7DtKZvejLCf9iY1hj5vJ4 PcUWQkPaeWAYrNDAUuUByB/7IFob45ZK4gthP3jTIK5KV18iehms+FJz2Ubit9IPAoNn yXQ+grad3P/srep5zuVPY0qagr41GU9hr5jzCPbUnwczxSTFWvVgakVjA24NyMFw2B6l SrVchFtpUuc+faWDwdFpcpFuKzDrYT2LUgwSjIvgy/40LOQ7xL83NcZSrYi5CVzabUGo 46upgTbWlcLYI8K8IeFMfqF7mVX6HpYvgsE4SSfOskKTiLFjWeO3xxiQw/a6LlHUu6fD +/Gw== Received: by 10.50.42.165 with SMTP id p5mr6415378igl.68.1340564127280; Sun, 24 Jun 2012 11:55:27 -0700 (PDT) Received: from DataIX.net (75-128-120-86.dhcp.aldl.mi.charter.com. [75.128.120.86]) by mx.google.com with ESMTPS id bo7sm11968342igb.2.2012.06.24.11.55.26 (version=TLSv1/SSLv3 cipher=OTHER); Sun, 24 Jun 2012 11:55:26 -0700 (PDT) Received: from DataIX.net (localhost [127.0.0.1]) by DataIX.net (8.14.5/8.14.5) with ESMTP id q5OItNWG016334 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Sun, 24 Jun 2012 14:55:23 -0400 (EDT) (envelope-from jhellenthal@DataIX.net) Received: (from jh@localhost) by DataIX.net (8.14.5/8.14.5/Submit) id q5OItNCK016333; Sun, 24 Jun 2012 14:55:23 -0400 (EDT) (envelope-from jhellenthal@DataIX.net) Date: Sun, 24 Jun 2012 14:55:22 -0400 From: "J. Hellenthal" To: Robert Simmons Message-ID: <20120624185522.GB11320@DataIX.net> References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: X-Gm-Message-State: ALoCoQm5ELwi4Y0yXlWN2NEDRHqtWRKaTcERCUrlT9/bPYS0zhYl5MapzJXaOZF+bDSD6sbgaYo1 Cc: freebsd-security@freebsd.org Subject: Re: Hardware potential to duplicate existing host keys... RSA DSA ECDSA was Add rc.conf variables... X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 24 Jun 2012 18:55:28 -0000 On Sun, Jun 24, 2012 at 02:34:45PM -0400, Robert Simmons wrote: > In light of advanced in processors and GPUs, what is the potential for > duplication of RSA, DSA, and ECDSA keys at the current default key > lengths (2048, 1024, and 256 respectively)? Just missed this one... http://en.wikipedia.org/wiki/Key_size (Value Added Link) -- - (2^(N-1))